Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/945f0e-268e-4947-abb3-a9424d948251/1/RWKKjMorCAoxrZVY-i04MM7VjEE.roa
File: RWKKjMorCAoxrZVY-i04MM7VjEE.roa (raw, json)
Hash identifier: Wd1GLp0rMEZU2yugPw0OP/LRmIAh2RzB9BOwbw0PF2c=
Subject key identifier: 45:62:8A:8C:CA:2B:08:0A:31:AD:95:58:FA:2D:38:30:CE:D5:8C:41
Certificate issuer: /CN=f4457fbe10eb2ae6e0f8dc7ea62d70f3316c35db
Certificate serial: 0181D7E48CF104671D9431AFE746DB3760F2
Authority key identifier: F4:45:7F:BE:10:EB:2A:E6:E0:F8:DC:7E:A6:2D:70:F3:31:6C:35:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9EV_vhDrKubg-Nx-pi1w8zFsNds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/945f0e-268e-4947-abb3-a9424d948251/1/RWKKjMorCAoxrZVY-i04MM7VjEE.roa
Signing time: Thu 07 Jul 2022 09:01:28 +0000
ROA not before: Thu 07 Jul 2022 09:01:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 109.205.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d7:e4:8c:f1:04:67:1d:94:31:af:e7:46:db:37:60:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4457fbe10eb2ae6e0f8dc7ea62d70f3316c35db
Validity
Not Before: Jul 7 09:01:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45628a8cca2b080a31ad9558fa2d3830ced58c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:73:b8:73:9a:84:f5:22:00:8c:da:bb:42:9b:
a7:c0:3a:fc:4c:26:2f:44:01:9a:0a:22:cb:57:97:
0d:48:20:66:f4:e1:3d:47:f4:59:8e:be:78:a7:cd:
f4:c1:b5:2d:1e:d4:3a:bb:21:fa:48:f3:b8:42:7f:
07:c1:88:d0:5a:f1:98:e5:5b:9a:fb:af:5e:0f:1b:
f6:3b:7a:98:9d:fe:7d:fb:6b:4b:b9:04:eb:79:bb:
a1:1b:59:2a:b6:d3:f3:ae:73:5c:f3:b0:a0:dc:07:
96:25:ac:f2:41:fd:32:45:84:94:d6:dc:21:d4:35:
14:f7:4c:58:b1:79:67:7d:2e:5a:de:bd:03:01:a0:
11:99:9e:09:66:c5:5b:1c:9e:ef:31:5d:81:be:ef:
31:2c:a9:43:19:6e:62:ad:05:ba:3f:8f:eb:5f:fe:
82:0e:28:47:68:98:26:33:c9:d9:3e:9a:34:7b:dc:
02:6a:d2:bc:15:12:02:ca:4f:7c:92:4d:af:b6:67:
3f:ca:72:95:b3:7e:16:47:40:8b:d5:e4:11:50:85:
cd:94:31:28:60:1e:85:78:0d:87:c3:12:4c:51:66:
b0:16:5e:30:6b:27:53:2e:31:a9:ab:23:20:c6:17:
27:84:35:80:ec:00:98:6c:bc:80:f6:3a:c4:59:98:
86:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:62:8A:8C:CA:2B:08:0A:31:AD:95:58:FA:2D:38:30:CE:D5:8C:41
X509v3 Authority Key Identifier:
keyid:F4:45:7F:BE:10:EB:2A:E6:E0:F8:DC:7E:A6:2D:70:F3:31:6C:35:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9EV_vhDrKubg-Nx-pi1w8zFsNds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/945f0e-268e-4947-abb3-a9424d948251/1/RWKKjMorCAoxrZVY-i04MM7VjEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/945f0e-268e-4947-abb3-a9424d948251/1/9EV_vhDrKubg-Nx-pi1w8zFsNds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.191.0/24
Signature Algorithm: sha256WithRSAEncryption
26:9e:01:90:22:b2:18:4f:5a:3a:1b:43:31:de:34:2a:ff:b0:
3c:4f:a3:05:4f:b2:91:f3:06:87:ec:f7:fd:cf:7c:9d:de:81:
ff:02:1f:f3:69:87:bf:b1:a0:25:ab:50:68:e8:51:a7:1e:27:
09:55:d3:e1:83:79:8c:d6:e2:37:bf:00:a1:ea:a4:9f:6b:e0:
6f:4f:a1:92:42:60:83:79:ae:d8:dc:16:be:ac:bd:94:de:8f:
9c:47:39:e9:93:2f:af:9d:e4:1a:02:5f:2c:99:cc:ac:99:2f:
63:95:bf:15:d9:da:b6:d3:93:f8:7c:fe:ae:25:90:b3:88:74:
47:c3:fa:da:99:05:16:8b:bc:b4:73:8d:9e:55:2c:a0:ec:46:
fe:10:e0:5f:33:b5:db:b9:09:87:d9:3d:5d:dc:f9:2e:cf:be:
cf:39:ad:1d:fb:f4:f7:3b:1e:2d:05:9e:cb:db:14:4d:60:36:
56:53:41:1f:41:7a:d0:3c:69:b8:90:73:e9:ea:b6:11:71:1f:
e2:ad:fe:8c:7c:11:c5:a2:ce:0f:1e:6d:5c:a8:b1:e2:93:7f:
b4:a9:84:af:60:08:03:dc:db:28:69:3f:41:3c:75:70:9a:7c:
19:81:f0:67:87:29:a5:69:d3:94:7d:cb:54:7a:40:94:cc:32:
02:81:1b:be
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHX5IzxBGcdlDGv50bbN2DyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0NDU3ZmJlMTBlYjJhZTZlMGY4ZGM3ZWE2MmQ3MGYzMzE2
YzM1ZGIwHhcNMjIwNzA3MDkwMTI4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTYyOGE4Y2NhMmIwODBhMzFhZDk1NThmYTJkMzgzMGNlZDU4YzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHO4c5qE9SIAjNq7QpunwDr8TCYv
RAGaCiLLV5cNSCBm9OE9R/RZjr54p830wbUtHtQ6uyH6SPO4Qn8HwYjQWvGY5Vua
+69eDxv2O3qYnf59+2tLuQTrebuhG1kqttPzrnNc87Cg3AeWJazyQf0yRYSU1twh
1DUU90xYsXlnfS5a3r0DAaARmZ4JZsVbHJ7vMV2Bvu8xLKlDGW5irQW6P4/rX/6C
DihHaJgmM8nZPpo0e9wCatK8FRICyk98kk2vtmc/ynKVs34WR0CL1eQRUIXNlDEo
YB6FeA2HwxJMUWawFl4waydTLjGpqyMgxhcnhDWA7ACYbLyA9jrEWZiGMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEViiozKKwgKMa2VWPotODDO1YxBMB8GA1UdIwQY
MBaAFPRFf74Q6yrm4PjcfqYtcPMxbDXbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOUVWX3ZoRHJLdWJnLU54LXBpMXc4ekZzTmRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi85NDVmMGUtMjY4ZS00OTQ3LWFiYjMt
YTk0MjRkOTQ4MjUxLzEvUldLS2pNb3JDQW94clpWWS1pMDRNTTdWakVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi85NDVmMGUtMjY4ZS00OTQ3LWFiYjMtYTk0MjRkOTQ4MjUx
LzEvOUVWX3ZoRHJLdWJnLU54LXBpMXc4ekZzTmRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbc2/MA0G
CSqGSIb3DQEBCwUAA4IBAQAmngGQIrIYT1o6G0Mx3jQq/7A8T6MFT7KR8waH7Pf9
z3yd3oH/Ah/zaYe/saAlq1Bo6FGnHicJVdPhg3mM1uI3vwCh6qSfa+BvT6GSQmCD
ea7Y3Ba+rL2U3o+cRznpky+vneQaAl8smcysmS9jlb8V2dq205P4fP6uJZCziHRH
w/ramQUWi7y0c42eVSyg7Eb+EOBfM7XbuQmH2T1d3Pkuz77POa0d+/T3Ox4tBZ7L
2xRNYDZWU0EfQXrQPGm4kHPp6rYRcR/irf6MfBHFos4PHm1cqLHik3+0qYSvYAgD
3NsoaT9BPHVwmnwZgfBnhymladOUfctUekCUzDICgRu+
-----END CERTIFICATE-----
Generated at Tue Apr 22 15:31:48 2025 by rpki-client